Forwarding VIP
Hi, I need a solution for a VIP, which will securely proxy traffic from my DMZ to LAN (via middle network where F5 lives), as direct communication is prohibited.
The goal ultimately is to have one server in DMZ talking to a range of different addresses on LAN (dest addresses cannot be tied down, and will change frequently), on a single port, and likely be encrypted. Also here will be no load balancing or NAT required, so im thinking a forwarding VIP will suit best for my requirements, with maybe a message filter to tie down to the DMZ source IP.
My concern is how secure is a forwarding VIP, as i really need a full proxy type VIP, so maybe im barking up the wrong three with forwarding VIP, or on the other hand is it possible to achieve my goal using standard/secure VIP? I already have a firewall in place, so if a forwarding rule is the same as a firewall rule, its pretty pointless. Thanks in advance!